Yangseo Choi scite author profile

With the wide spread uses of the Internet, the number of Internet attacks keeps increasing, and malware is the main cause of most Internet attacks. Malware is used by attackers to infect normal users' computers and to acquire private information as well as to attack other machines. The number of new malware and variants of malware is increasing every year because the automated tools allow attackers to generate the new malware or their variants easily. Therefore, performance improvement of the malware analysis is critical to prevent malware from spreading rapidly and to mitigate damages to users. In this paper, we proposed a new malware classification method by analyzing similarities of malware. Our method analyzes a small part of malware to reduce analysis overheads, and experimental results showed that our approach can effectively classify malware families.

show abstract

Integrated DDoS Attack Defense Infrastructure for Effective Attack Prevention

Choi

Jang

et al. 2010

View full text Add to dashboard Buy / Rent full text

AIGG Threshold Based HTTP GET Flooding Attack Detection

Choi

Kim

et al. 2012

View full text Add to dashboard Buy / Rent full text

Network-Based Real-Time Connection Traceback System (NRCTS) with Packet Marking Technology

Choi

Seo

Sohn

et al. 2003

View full text Add to dashboard Buy / Rent full text

Cybersecurity Vulnerability Scanner for Digital Nuclear Power Plant Instrumentation and Control Systems

Kim

Choi

2018

View full text Add to dashboard Buy / Rent full text

A Practical Approach for Detecting Executable Codes in Network Traffic

Kim

Kang

Choi

et al.

View full text Add to dashboard Buy / Rent full text

Protocol fuzzing to find security vulnerabilities of RabbitMQ

Kwon

Son²,

Choi

et al. 2020

Concurrency Computat Pract Exper

View full text Add to dashboard Buy / Rent full text

A message broker is widely used to enable applications, systems, and services to communicate with each other. One of the widely used message brokers is RabbitMQ that provides various functions and stability. However, as presented in this paper, Rab-bitMQ is vulnerable. In this paper, we present how RabbitMQ is exploited by protocol fuzzing, which is a common way to find unknown vulnerabilities inherent in software. We describe our protocol fuzzing procedures in detail and present conducted results.

show abstract

12 3 4

scite is a Brooklyn-based startup that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

hi@scite.ai

334 Leonard St

Brooklyn, NY 11211

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Yangseo Choi

PE File Header Analysis-Based Packed PE File Detection Technique (PHAD)

Malware classification method via binary content comparison

Integrated DDoS Attack Defense Infrastructure for Effective Attack Prevention

AIGG Threshold Based HTTP GET Flooding Attack Detection

Network-Based Real-Time Connection Traceback System (NRCTS) with Packet Marking Technology

Cybersecurity Vulnerability Scanner for Digital Nuclear Power Plant Instrumentation and Control Systems

A Practical Approach for Detecting Executable Codes in Network Traffic

Protocol fuzzing to find security vulnerabilities of RabbitMQ

Contact Info

Product

Resources

About